Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:42 a.m.6 views

CVE-2024-23349

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache Answer.This issue affects Apache Answer: through 1.2.1. XSS attack when user enters summary. A logged-in user, when modifying their own submitted question, can input malicious code in the...

5.4CVSS6.1AI score0.01073EPSS
Exploits0References1
OSV
OSV
added 2024/06/14 12:0 a.m.3 views

CVE-2024-36656

In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting XSS attack...

6.1CVSS6.7AI score0.00301EPSS
Exploits1References3
Prion
Prion
added 2024/01/26 6:15 p.m.21 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly valida...

4.3CVSS6.2AI score0.00352EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2022/11/15 9:15 p.m.26 views

CVE-2022-20832

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...

4.8CVSS0.00446EPSS
Exploits0References1
NVD
NVD
added 2022/10/07 6:15 p.m.32 views

CVE-2022-37892

A vulnerability in the Aruba InstantOS and ArubaOS 10 web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a...

5.4CVSS0.00574EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/05/19 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for pki-core (EulerOS-SA-2021-1910)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.01187EPSS
Exploits1References2
CNVD
CNVD
added 2021/04/28 12:0 a.m.8 views

TYPO3 cross-site scripting vulnerability (CNVD-2021-38777)

TYPO3 is a free and open source content management system framework from the Swiss TYPO3 Association. A cross-site scripting vulnerability exists in version 1.x prior to TYPO3 1.3.3, which stems from insufficient innocuous handling of user-supplied data, and can be exploited by attackers to condu...

5.4CVSS5.4AI score0.00534EPSS
Exploits0References1
Prion
Prion
added 2021/04/08 4:15 a.m.26 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface do...

4.3CVSS5.9AI score0.00823EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2018/02/22 12:0 a.m.8 views

CVE-2018-0200

A vulnerability in the web-based interface of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web-based interface of an affected product. The vulnerability is due to insufficient validation of...

6AI score0.01244EPSS
Exploits0References3
Rows per page
Query Builder